Post by: bakuryu on July 21, 2004, 11:52:57 AM
/sad.gif\' class=\'bbc_emoticon\' alt=\':(\' /> this is making me mad. I have run CWSHREDDER also.
Post by: horner1971 on July 24, 2004, 02:10:14 PM
Got www.adwareaway.com download that when you install follow the instuctions reboot strat your internet up BINGO back to normal.
Good Look
CH
/biggrin.gif\' class=\'bbc_emoticon\' alt=\':D\' />
Post by: Guest on July 25, 2004, 12:58:35 AM
/biggrin.gif\' class=\'bbc_emoticon\' alt=\':D\' />
Post by: Guest on July 25, 2004, 05:30:19 PM
Post by: Hoee Gee on July 26, 2004, 08:05:38 AM
/ohmy.gif\' class=\'bbc_emoticon\' alt=\':o\' /> I Know Is A Sex Trekar
/blink.gif\' class=\'bbc_emoticon\' alt=\':blink:\' /> But I Want To Removd This Soft
/smile.gif\' class=\'bbc_emoticon\' alt=\':)\' />
Post by: Hoee Gee on July 26, 2004, 08:06:36 AM
/ohmy.gif\' class=\'bbc_emoticon\' alt=\':o\' /> I Know Is A Sex Trekar
/blink.gif\' class=\'bbc_emoticon\' alt=\':blink:\' /> But I Want To Removd This Soft
/smile.gif\' class=\'bbc_emoticon\' alt=\':)\' />
Post by: Bakuryu on July 26, 2004, 04:45:30 PM
Post by: Bakuryu on July 26, 2004, 04:57:39 PM
Post by: Guest on July 27, 2004, 11:27:51 AM
/sad.gif\' class=\'bbc_emoticon\' alt=\':(\' /> this is making me mad. I have run CWSHREDDER also.[/quote]hi i have the same i face alote like i solved be deleted manule on system32 like service on system32 folder
Post by: Guest on July 29, 2004, 03:04:50 PM
Post by: The_Flames on July 29, 2004, 10:23:21 PM
http://www.spybot.info/en/index.html (http://\"http://www.spybot.info/en/index.html\")
that should let you get rid of your spyware
Post by: Guest on August 01, 2004, 08:34:42 PM
Post by: Guest on August 02, 2004, 11:24:40 PM
Only one claims to be able to, almost like they hare the cure before the desease. Could the current fix some mention for this threat be from the actual author of the hijack?? Are you sure your not installing a backdoor in the process...
Some people just install anything, and then trust anyone to remove it...
Post by: Promethean1 on August 07, 2004, 08:18:05 AM
it kept redirecting my browser to "ssearch.biz/?wmid=1010" searchpage
I tried Trend pc cillan, Norton, cws shredder ,spybot s&d, adaware6.0 ,trojan hunter - all to no avail
... it kept me busy and frustrated for over a week untill I found T-Zero's remedy and now it is finally gone ..here is the link to T-Zero's thread
http://forums.net-integration.net/index.ph...t=0&#entry94408 (http://\"http://forums.net-integration.net/index.php?showtopic=20383&st=0&#entry94408\")
Good luck you guys ....be careful with "hijack this"
Thankyou T-Zero
Post by: Guest on August 08, 2004, 12:26:41 AM
Post by: Grinler on August 12, 2004, 11:19:27 AM
Post by: Guest on August 16, 2004, 04:52:54 AM
/sad.gif\' class=\'bbc_emoticon\' alt=\':(\' /> this is making me mad. I have run CWSHREDDER also.[/quote]you can find where it is hiding by searching in[for files and folders] make sure you click on search hidden files and folders
try both full web site address and ?wmid1010 you should get a listing of hidden folders it is in open them then delete
hpoe this will solve your probs
Post by: happy for once on August 21, 2004, 08:11:00 PM
/cool.gif\' class=\'bbc_emoticon\' alt=\'B)\' /> try Webroot-spy sweeper and turn on all the blocks and shields., just read and do what they say ....it works ....and throw all the others away.....after months of putting up with this little pest ,finally got it gone....... /laugh.gif\' class=\'bbc_emoticon\' alt=\':lol:\' /> /biggrin.gif\' class=\'bbc_emoticon\' alt=\':D\' /> also for some reason the new browser that looks like internet exployer ....used to be ie4u. ... now Maxthon works fine. --I used ie4u for months with no problems...no pests at all , went back to internet exp. and bingo...back again ......ok ok ...now you will say i visit the xxxx sites. /blink.gif\' class=\'bbc_emoticon\' alt=\':blink:\' /> ...sure everyone has to look ,,,right??? but anyway the only way to keep everything clean is just dont turn on the net..... back to the stone age!!!food for thought-:
for some reason i noticed that when the little pest loaded it had an add for a spyware remover close to the top ....could there be some conspiracy.....remember the people who write these programs ...some used to be hackers.etc.......you figure it out...i give up ......just keep spending more money to keep ahead. ---PT Barnum must be alive!!!!---
/ph34r.gif\' class=\'bbc_emoticon\' alt=\':ph34r:\' />
Post by: fasteddy1108 on September 01, 2004, 05:20:44 PM
it's full name is :CWS_pnpsvc-nqtwz]'c.dll
it is a CWS About Blank Hijack that lives in XP here :
C:\Windows\System32 NQTWZ.dll
Hijack This, AdAway, Spybot 1.3, Ad Aware, Spysweeper free edition, StartDreck, etc will not remove it.
I spent 12 Hours getting to the bottom if this for one of my clients.
Microsoft was no help at all event though it's there Browser I would have had to wait 5 days for level 2 support.
Webroot Technicians gave me a free full Version 3.2 yes you have to buy it version to test it our after I explained to them what a fning problem this thing was.
You can try deleteing the .dll in safemode manually I dont know if it will work as the thing is memory resident but it might. Otherwise break down and buy the full verion of Spysweeper or reformat.
If you want to send me a few bucks for my trouble Tom Fallon 26 Perch Pond Chatham Ma 02633 Thanks in advance. If not np but this is as of 9 1 04 the only fix that works and it found it in like 4 minutes.
Email me if you find this helpful
Tom
Post by: Erin on September 02, 2004, 11:57:29 AM
/cool.gif\' class=\'bbc_emoticon\' alt=\'B)\' /> try Webroot-spy sweeper and turn on all the blocks and shields., just read and do what they say ....it works ....and throw all the others away.....after months of putting up with this little pest ,finally got it gone....... /laugh.gif\' class=\'bbc_emoticon\' alt=\':lol:\' /> :[/quote]Hmm...I actually purchased Webroot this week and upgraded the app and all signature files. But they are not able to clean this one up. In fact if you go to there website you'll not they are saying it will be a minimum of two weeks before they have a viable fix. So far that was $30 flushed down the toilet I would stay away from WebRoot.
Post by: KC on September 02, 2004, 11:33:36 PM
Quote
http://ssearch.biz/?wmid=1010 (http://\"http://ssearch.biz/?wmid=1010\") hijackerI spent ages trying to remove this hijacker from a PC. As others said the usual programs don't find it. It hijacks 'My Computer' as well as IE.
In the end it was quite simple to remove. WinPatrol identified a running process sdspebpo.exe. A web search on this file found nothing (hence it seemed suspicious) so I killed that task and suddenly IE and My Computer came up properly. Ran msconfig and unticked this prog from the startup (it was showing as a 'DNS Cache') and rebooted - It didn't come back - SUCCESS! (well hopefully - haven't connected that PC to the internet yet).
Post by: Guest on September 07, 2004, 04:11:17 PM
They only thing you need is (free version) adware away
And follow the steps by them on there site
http://adwareaway.com/ssearchbiz.htm (http://\"http://adwareaway.com/ssearchbiz.htm\")
Fist i got an error but with help from there support i am free of ssearch.biz
Post by: Guest_John on September 09, 2004, 01:10:49 AM
/biggrin.gif\' class=\'bbc_emoticon\' alt=\':D\' /> Dear All,
I have just removed sucessfully the tough ssearch.biz with only one time refer this page and use also only one time of the excellent Adaware Away.
Thanks a lot to this forum.
vucanxuan1965Email Removed
Post by: Guest on September 09, 2004, 06:07:02 AM
Set your Explorer up using the info in this link so that hidden and System files are visible
Also Uncheck the "Hide extensions for known file types" box
Reboot to SAFE mode
How to start the computer in Safe mode
Rename the C:\WINNT\Regedit.exe file to oldreg.bin
It appears to be infected and you will have to replace it from CD
Start the program we installed (use Start > All Programs > pserv.cpl > Services and Devices)
(my spanish is awful)
When it opens find the Plug and Play svc service
Right click and choose Kill - then set it disabled (or even delete it)
Reboot and check -- did it come back ?
Fix the entries using HijackThis
extract a new regedit.exe file
/biggrin.gif\' class=\'bbc_emoticon\' alt=\':D\' />
Post by: Guest on September 13, 2004, 04:48:50 PM
This is the answer to all of you that were unable to remove ssearch.biz:
http://www.members.shaw.ca/AdwareAway/AdwareAway.exe (http://\"http://www.members.shaw.ca/AdwareAway/AdwareAway.exe\")
it does work , did it 5 mins ago 100%
you only need to select the hijaker to be removed and thats it
good luck to all of you
its good to try somthing that you know that it works 100%
Post by: Guest on September 13, 2004, 07:33:23 PM
adwareaway solved all my problems 1 min. ago!!!!!! thanks to everybody!!!!!!
i apologize for my bad english....but i'm from Milano Italia.....thanks thanks thanks
Post by: Pneumonic on October 24, 2004, 08:45:55 PM
I recently ran into this virus as well. While I have tried to chip away at this for quite a while (2 months), I finally found it. This is a virus created by 180solutions. It is found in a System32 Folder--download the Xoftspy software and do a search ONLY on the System32 folder. It will come up with a folder that is named something like FLEOK. Find this folder and delete it. No need to buy anything.
http://ssearch.biz/?wmid=1010 (http://\"http://ssearch.biz/?wmid=1010\")
Hope this works for all of you....
Post by: Guest on October 25, 2004, 04:14:39 PM
/biggrin.gif\' class=\'bbc_emoticon\' alt=\':D\' /> http://ssearch.biz/?wmid=1010 (http://\"http://ssearch.biz/?wmid=1010\") To delete this [censored] .
Delete all the folder in Content.IE5 in the Temporary Internet Files ,included the dustbin !!!!!!
Post by: jagdwire on October 27, 2004, 03:25:46 PM
1.http://www.mp3players4free.com/default.aspx?r=4070
2.http://www.mp3players4free.com/default.aspx?r=14984
3.????????
4.????????
5.????????
To be part of this conga line, e-mail me at habjabEmail Removed with the following info:
1. referral link
2. offer completed
3. e-mail you used to sign up for the FREE mp3 player
PS: Do not e-mail me if you don't use these referral links to sign up! Also, YOU MUST SIGN UP UNDER THE FIRST LINK OR YOU WILL NOT BE ADDED!
Thanks for your time and good luck!